Sujet Précédent Sujet Suivant

TROJAN DROPPER AGENT EYA et BACKDOOR WIN32

Poca -  
••RiverToo•• Messages postés 1098 Statut Membre -
Bonjour,

Je suis novice en informatique. J'ai depuis peu installé sur mon ordi A2, et j'ai fait la mauvaise découverte de TROJAN.
J'ai effectué un premier scan à la fin duquel on me proposait soit de supprimer, soit de mettre en quarantaine, soit de restaurer... mais depuis, j'ei effectué d'autres scans avec le même logiciel, il me trouve beaucoup d'infections et notamment trojan-dropper agent eya et backdoor win32, mais il se bloque avant la fin, sans jamais proposer de supprimer ou de mettre en quarantane...

Ce ne sont pas les seuls signes, ma navigation sur le net est devenu compliqué, quand je clique sur des dossiers ou autres, ca ne réagit pas, bref, je crois que mon ordi est très très infecté.

J'ai essayé de lire les sujets ressemblant à mon problème mais je n'ai pas tout compris aussi, je décide de créer mon propre message, en espèrant que vous puissiez m'aider.

Merci d'avance.
A voir également:

27 réponses

Précédent
  • 1
  • 2
Réponse 21 / 27
••RiverToo•• Messages postés 1098 Statut Membre 53
 
Il ne t'a pas tout supprimé

C:\WINDOWS\system32\tbfjpafj.exe

Essaye d'aller le chercher manuellement et supprime le ensuite vide la corbeille
0
poca
 
Voilà le nouveau rapport combo avec le petit programme que vous m'avez fait mettre

ComboFix 08-03-18.1 - Administrateur 2008-03-19 18:33:53.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.197 [GMT 1:00]
Endroit: C:\Documents and Settings\Administrateur\Bureau\ComboFix.exe
Command switches used :: C:\Documents and Settings\Administrateur\Bureau\CFScript.txt

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]

FILE ::
C:\Program Files\antiviirus.exe
C:\Program Files\tmp0.exe
C:\Program Files\tmp1.exe
C:\Program Files\tmp2.exe
C:\Program Files\tmp3.exe
C:\WINDOWS\altvxvm.dll
C:\WINDOWS\bokpkov.dll
C:\WINDOWS\system32\tscupgrd.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Program Files\Navilog1
C:\Program Files\Navilog1\Backupnavi\backup_registry.dat
C:\Program Files\Navilog1\Backupnavi\dmdlnhs.exe
C:\Program Files\Navilog1\Backupnavi\fdvnxhkawj.exe
C:\Program Files\Navilog1\Backupnavi\gsjchqk.exe
C:\Program Files\Navilog1\Backupnavi\gsrvxjeh.exe
C:\Program Files\Navilog1\Backupnavi\hvqdbmie.exe
C:\Program Files\Navilog1\Backupnavi\imtvkashya.exe
C:\Program Files\Navilog1\Backupnavi\ioxywwm.exe
C:\Program Files\Navilog1\Backupnavi\mqudzs.exe
C:\Program Files\Navilog1\Backupnavi\myqashzt.exe
C:\Program Files\Navilog1\Backupnavi\orlphfwqzs.exe
C:\Program Files\Navilog1\Backupnavi\qikwhin.exe
C:\Program Files\Navilog1\Backupnavi\sptgawhn.exe
C:\Program Files\Navilog1\Backupnavi\zngpilrwov.exe
C:\Program Files\Navilog1\catchme.exe
C:\Program Files\Navilog1\GetPaths.exe
C:\Program Files\Navilog1\gnc.exe
C:\Program Files\Navilog1\navilog1.bat
C:\Program Files\Navilog1\oem2ansi.exe
C:\Program Files\Navilog1\Process.exe
C:\Program Files\Navilog1\reboot.exe
C:\Program Files\Navilog1\reg.exe
C:\Program Files\Navilog1\regnavi.reg
C:\Program Files\Navilog1\traite.bat
C:\Program Files\Navilog1\traite2.bat
C:\Program Files\Navilog1\unins000.dat
C:\Program Files\Navilog1\unins000.exe
C:\PUMedFiles
C:\PUMedFiles\Mon_Fuhrer_pum.mp4
C:\upload_moi.tar.gz\
C:\upload_moi_XPSP2-BF2FC0858.tar.gz\
C:\WINDOWS\system32\tscupgrd.exe

.
((((((((((((((((((((((((((((( Fichiers créés 2008-02-19 to 2008-03-19 ))))))))))))))))))))))))))))))))))))
.

2008-03-19 16:10 . 2008-03-19 16:10 <REP> d-------- C:\Program Files\Avira
2008-03-19 16:10 . 2008-03-19 16:10 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
2008-03-19 15:43 . 2008-03-19 15:43 2,560 --a------ C:\WINDOWS\_MSRSTRT.EXE
2008-03-19 15:19 . 2008-03-19 15:19 14,966,231 --a------ C:\upload_moi.tar.gz
2008-03-19 15:10 . 2008-03-19 15:10 14,966,231 --a------ C:\upload_moi_XPSP2-BF2FC0858.tar.gz
2008-03-19 14:11 . 2008-03-19 14:35 <REP> d-------- C:\WINDOWS\BDOSCAN8
2008-03-18 22:03 . 2008-03-19 13:39 <REP> d-------- C:\Program Files\a-squared Free
2008-03-17 02:02 . 2008-03-17 02:02 <REP> d-------- C:\Program Files\VoipDiscount.com
2008-03-14 20:45 . 2008-03-14 20:45 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\Grisoft
2008-03-14 20:42 . 2007-05-30 13:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-03-14 13:36 . 2008-03-14 13:36 <REP> d-------- C:\Program Files\Kaspersky Lab
2008-03-14 13:36 . 2008-03-14 22:10 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-03-14 13:35 . 2008-03-14 13:35 <REP> d-------- C:\KAV
2008-03-14 11:03 . 2008-03-14 11:03 <REP> d-------- C:\Program Files\Cedelia
2008-03-14 10:51 . 2008-03-14 10:51 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-03-14 10:51 . 2008-03-14 10:51 1,409 --a------ C:\WINDOWS\QTFont.for
2008-03-03 01:47 . 2008-03-03 01:47 <REP> d-------- C:\Program Files\UbicMedia

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-19 14:44 --------- d-----w C:\Program Files\FlashGet
2008-03-18 21:35 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\SoftInform
2008-03-18 21:34 --------- d-----w C:\Program Files\Webteh
2008-03-16 18:22 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\DivX
2008-03-11 10:26 --------- d-----w C:\Documents and Settings\All Users\Application Data\WinZip
2008-02-28 02:02 --------- d-----w C:\Program Files\Windows Live
2008-02-25 23:27 --------- d-----w C:\Program Files\MSN Messenger
2008-02-25 23:27 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-02-16 23:34 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\dvdcss
2008-02-12 01:35 --------- d-----w C:\Program Files\Microsoft SQL Server Compact Edition
2008-02-12 01:29 --------- dcsh--w C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-02-12 01:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-02-01 10:17 587,264 ----a-w C:\WINDOWS\WLXPGSS.SCR
2005-05-13 16:12 217,073 --sha-r C:\WINDOWS\meta4.exe
2005-10-24 10:13 66,560 --sha-r C:\WINDOWS\MOTA113.exe
2005-10-13 20:27 422,400 --sha-r C:\WINDOWS\x2.64.exe
2005-10-07 18:14 308,224 --sha-r C:\WINDOWS\system32\avisynth.dll
2005-07-14 11:31 27,648 --sha-r C:\WINDOWS\system32\AVSredirect.dll
2005-06-26 14:32 616,448 --sha-r C:\WINDOWS\system32\cygwin1.dll
2005-06-21 21:37 45,568 --sha-r C:\WINDOWS\system32\cygz.dll
2004-01-24 23:00 70,656 --sha-r C:\WINDOWS\system32\i420vfw.dll
2006-04-27 09:24 2,945,024 --sha-r C:\WINDOWS\system32\Smab.dll
2005-02-28 12:16 240,128 --sha-r C:\WINDOWS\system32\x.264.exe
2004-01-24 23:00 70,656 --sha-r C:\WINDOWS\system32\yv12vfw.dll
.

((((((((((((((((((((((((((((( snapshot@2008-03-19_15.35.50,62 )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-08-09 12:04:11 40,768 ----a-w C:\WINDOWS\system32\drivers\avgntdd.sys
+ 2007-07-18 13:22:19 21,312 ----a-w C:\WINDOWS\system32\drivers\avgntmgr.sys
+ 2008-03-19 15:13:11 61,632 ----a-w C:\WINDOWS\system32\drivers\avipbb.sys
+ 2007-03-01 09:34:36 28,352 ----a-w C:\WINDOWS\system32\drivers\ssmdrv.sys
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 11:34 5724184]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 16:09 15360]
"Free Download Manager"="C:\Program Files\Free Download Manager\fdm.exe" [ ]
"VoipDiscount"="C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe" [2006-12-14 15:18 7558720]
"Pando"="C:\Program Files\Pando Networks\Pando\pando.exe" [ ]
"BitTorrent"="C:\Program Files\BitTorrent\bittorrent.exe" [ ]
"MSMSGS"="C:\Program Files\Messenger\MSMSGS.exe" [2003-04-14 20:05 1498032]
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" [2005-06-08 14:44 196608]
"Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" [2007-12-21 17:51 3481600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2004-10-26 12:01 4632576]
"nwiz"="nwiz.exe" [2004-01-08 14:26 323584 C:\WINDOWS\system32\nwiz.exe]
"Apoint"="C:\Program Files\Apoint\Apoint.exe" [2004-08-21 17:04 155648]
"Look 'n' Stop"="C:\Program Files\Soft4Ever\looknstop\looknstop.exe" [2004-05-17 18:53 25474]
"QuickTime Task"="C:\Program Files\QuickStarTime\qttask.exe" [2006-10-25 18:58 282624]
"PRONoMgr.exe"="C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe" [2003-05-28 16:32 86016]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 09:50 155648]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe" [2006-07-26 03:03 49263]
"LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" [2005-07-19 17:32 221184]
"LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" [2005-06-08 15:24 458752]
"LogitechVideoTray"="C:\Program Files\Logitech\Video\LogiTray.exe" [2005-06-08 15:14 217088]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2007-02-13 19:29 35328]
"MPTBox"="C:\Program Files\Canon\MultiPASS4\MPTBox.exe" [2002-08-08 07:52 167936]
"Omnipage"="C:\Program Files\ScanSoft\OmniPageSE\opware32.exe" [2002-02-20 19:01 49152]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25 6731312]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-03-19 16:13 249896]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" [2006-10-26 19:48 434528]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Config"="C:\WINDOWS\system32\run.cmd" [2006-02-14 10:24 248]
"tscuninstall"="C:\WINDOWS\system32\tscupgrd.exe" [2004-08-19 15:52 44544]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 20:05:26 29696]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"AllowLegacyWebView"= 1 (0x1)
"AllowUnhashedWebView"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoStrCmpLogical"= 0 (0x0)
"NoInstrumentation"= 0 (0x0)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"CDService"= {ac6e7549-6ff1-4c4a-b40e-7c84b9ef6f65} - C:\WINDOWS\Installer\{ac6e7549-6ff1-4c4a-b40e-7c84b9ef6f65}\CDService.dll [ ]
"zip"= {2c64bb40-abea-4332-89ac-756cfbd9e123} - C:\WINDOWS\Installer\{2c64bb40-abea-4332-89ac-756cfbd9e123}\zip.dll [ ]
"altvxvm"= {06B3ACAE-153B-4DA2-B23A-161DDA18D346} - C:\WINDOWS\altvxvm.dll [ ]
"bokpkov"= {ED4025EA-B4FE-4783-93D9-9D56D7B78250} - C:\WINDOWS\bokpkov.dll [ ]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Sebring]
C:\WINDOWS\system32\LgNotify.dll 2004-01-12 05:55 110592 C:\WINDOWS\system32\LgNotify.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"DisablePagingExecutive"=dword:00000001
"SecondLevelDataCache"=dword:00000200

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\VoipDiscount.com\\VoipDiscount\\VoipDiscount.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"7570:TCP"= 7570:TCP:BitComet 7570 TCP
"7570:UDP"= 7570:UDP:BitComet 7570 UDP

R1 lnsfw1;lnsfw1;C:\WINDOWS\system32\drivers\lnsfw1.sys [2006-09-22 00:13]
S3 NAL;Nal Service ;C:\WINDOWS\system32\Drivers\iqvw32.sys [2002-11-22 19:01]

*Newly Created Service* - SSMDRV
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-19 18:36:03
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-03-19 18:36:38
ComboFix-quarantined-files.txt 2008-03-19 17:36:20
ComboFix2.txt 2008-03-19 14:36:15
ComboFix3.txt 2008-03-19 12:15:26
.
2008-03-15 10:18:26 --- E O F ---

Voilà, je continue les instructions que je n'ai pas faite
0
poca
 
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:40:44, on 19/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\S24EvMon.exe
C:\WINDOWS\system32\ZCfgSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\1XConfig.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
C:\WINDOWS\system32\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Canon\MultiPASS4\MPTBox.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\WINZIP\winzip32.exe
C:\Documents and Settings\Administrateur\Local Settings\Temp\wz7bfb\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://login.live.com/ppsecure/sha1auth.srf?lc=1036
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickStarTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PRONoMgr.exe] C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [MPTBox] C:\Program Files\Canon\MultiPASS4\MPTBox.exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [VoipDiscount] "C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe" -nosplash -minimized
O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\pando.exe" /Automation
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O21 - SSODL: CDService - {ac6e7549-6ff1-4c4a-b40e-7c84b9ef6f65} - C:\WINDOWS\Installer\{ac6e7549-6ff1-4c4a-b40e-7c84b9ef6f65}\CDService.dll (file missing)
O21 - SSODL: zip - {2c64bb40-abea-4332-89ac-756cfbd9e123} - C:\WINDOWS\Installer\{2c64bb40-abea-4332-89ac-756cfbd9e123}\zip.dll (file missing)
O21 - SSODL: altvxvm - {06B3ACAE-153B-4DA2-B23A-161DDA18D346} - C:\WINDOWS\altvxvm.dll (file missing)
O21 - SSODL: bokpkov - {ED4025EA-B4FE-4783-93D9-9D56D7B78250} - C:\WINDOWS\bokpkov.dll (file missing)
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: MpService - Canon Inc. - C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\system32\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\system32\S24EvMon.exe
0
poca
 
J'ai recherché, trouvé, supprimé et supprimé de la corbeille le fichier:
C:\WINDOWS\system32\tbfjpafj.exe

Voilà, j'attends les nouvelles instructions, en espérant qu'on en arrive au bout!!!

Merci
0
Réponse 22 / 27
••RiverToo•• Messages postés 1098 Statut Membre 53
 
Ok as tu était dans

C:\WINDOWS\system32\tbfjpafj.exe ?? pour le supprimé ?

Ensuite fait un scan online bitdefender stp et post le rapport
0
poca
 
Euh, j'ai effectué ma recherche du fichier dans rechercher , il ne fallait pas faire comme ca?
0
••RiverToo•• Messages postés 1098 Statut Membre 53 > poca
 
Ba va voir par le chemin que jtai montré s'il ny est pas c'est que tu la bien supprimé ensuite fait le scan online nod32
stp
0
poca > ••RiverToo•• Messages postés 1098 Statut Membre
 
j'ai pensé que relancé A2, ca ne devait pas être une mauvaise idée... Voilà le rapport:

Version - a-squared Free 3.1
Dernière mise à jour: 19/03/2008 13:39:42

Réglages Scan:

Objets: Mémoire, Traces, Cookies, C:\WINDOWS\, C:\Program Files
Scan archives: Marche
Heuristiques: Marche
Scan ADS: Marche

Début du scan: 20/03/2008 00:26:24

Key: HKEY_USERS\S-1-5-21-1644491937-1708537768-839522115-500\software\kazaa Détecter: Trace.Registry.KaZaA
C:\Documents and Settings\Administrateur\Cookies\administrateur@2o7[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@advertising[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@atdmt[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@bluestreak[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@bs.serving-sys[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@commentcamarche[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@doubleclick[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@media.adrevolver[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@server.iad.liveperson[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@serving-sys[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@smartadserver[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@tradedoubler[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@tribalfusion[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@weborama[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:95 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:96 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:97 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:98 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:99 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:100 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:102 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:103 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:104 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:105 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:106 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:107 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:108 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:109 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:111 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:113 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:114 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:115 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:116 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:120 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:205 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:215 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:264 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:265 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:335 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:336 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:337 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:338 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:339 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:340 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:342 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:345 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:372 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:380 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:381 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:382 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:388 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:390 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:433 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:441 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:597 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:598 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:607 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:643 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:644 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:645 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:782 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:805 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:827 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:829 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:830 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:879 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:882 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:883 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:884 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:885 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:886 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:887 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:888 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt:911 Détecter: Trace.TrackingCookie

Scanné

Fichiers: 32845
Traces: 382699
Cookies: 1091
Processus: 44

Trouver

Fichiers: 0
Traces: 1
Cookies: 74
Processus: 0
Clés de Registre: 0

Fin du Scan: 20/03/2008 00:51:45
Temps du Scan: 0:25:21
0
poca > ••RiverToo•• Messages postés 1098 Statut Membre
 
et en dernier, je viens de faire le scan d'AVG, voilà le rapport


---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 01:44:24 20/03/2008

+ Résultat de l'analyse:



:mozilla.676:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.677:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.678:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.196:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.197:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.198:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.199:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.200:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.349:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.622:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.842:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@www.abcsearch[1].txt -> TrackingCookie.Abcsearch : Nettoyé.
:mozilla.855:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.858:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.859:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.127:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.129:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.130:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.131:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.132:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.133:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.134:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.135:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.81:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.166:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.167:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.168:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.169:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.170:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.225:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.29:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.845:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.90:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.136:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.137:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.138:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.139:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.140:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.381:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.382:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.383:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.24:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.16:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.793:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.794:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.795:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.796:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.797:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.837:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.838:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.839:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.840:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.881:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Gemius : Nettoyé.
:mozilla.882:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Gemius : Nettoyé.
:mozilla.357:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.360:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.608:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.828:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.15:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.59:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.614:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.696:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.6:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.8:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.9:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.148:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.149:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.356:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.213:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Netflame : Nettoyé.
:mozilla.214:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Netflame : Nettoyé.
:mozilla.215:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Netflame : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Nettoyé.
:mozilla.23:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.805:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.806:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.807:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.808:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.809:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.810:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.811:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.239:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.240:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.241:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.242:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.243:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.244:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.245:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.598:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.599:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.51:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.52:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.53:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.54:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.55:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.484:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Spylog : Nettoyé.
:mozilla.705:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.708:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.709:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.710:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.711:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.712:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.713:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.714:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.715:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.716:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.717:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.85:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.86:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.87:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.88:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.89:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.270:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.156:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.157:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.158:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.159:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.363:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.364:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.365:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.366:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.424:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.425:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.426:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.427:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@argenius.solution.weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.230:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.220:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.485:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yadro : Nettoyé.
:mozilla.117:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.118:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.119:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.120:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.121:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.122:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.123:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.124:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.126:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.128:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Administrateur\Cookies\administrateur@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.900:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.901:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.902:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.903:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.904:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\aka6mw1f.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.


Fin du rapport



Voilà, je crois que j'ai eu ma dose de scan pour la journée, j'arrête là, on verra la suite demain!

A demain et encore merci
0
Réponse 23 / 27
••RiverToo•• Messages postés 1098 Statut Membre 53
 
fait un scan en ligne (coche toutes les cases à chaque fois) :
https://www.eset.com/ à ouvrir avec internet explorer

à la fin colle le rapport : C:\Program Files\EsetOnlineScanner\log.txt

si ta besoin d'aide tu as un tutoriel ici : http://bibou0007.com/tutos-et-lexique-f45/tutorial-nod32-online-scanner-t128.htm
0
Poca
 
Bon,

le scan venait juste de terminer au bout de 3 heures, il avait trouver un Objets infecté qu'il a supprimé mais je n'ai pas pu sortir un rapport, et là, j'ai beau chercher, je ne le trouve pas, et il faudrait que je relance le scan.

Que dois-je faire maintenant?

Merci
0
poca
 
Le virus a bien été supprimé manuellement, j'ai vérifié par le chemin, c bon, je ne l'ai pas trouvé
0
poca
 
Voilà,

j'ai pensé que ce serait bien de relancer le scan d'antivar, donc voilà le rapport:



AntiVir PersonalEdition Classic
Report file date: mercredi 19 mars 2008 23:32

Scanning for 1158890 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: SYSTEM
Computer name: XPSP2-BF2FC0858

Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29
AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51
LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47
LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15
ANTIVIR1.VDF : 7.0.3.2 5447168 Bytes 07/03/2008 15:13:10
ANTIVIR2.VDF : 7.0.3.3 2048 Bytes 07/03/2008 15:13:10
ANTIVIR3.VDF : 7.0.3.54 311808 Bytes 19/03/2008 15:13:10
AVEWIN32.DLL : 7.6.0.75 3334656 Bytes 19/03/2008 15:13:11
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
AVPACK32.DLL : 7.6.0.3 360488 Bytes 19/03/2008 15:13:11
AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06
AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13
RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37
SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: C:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: mercredi 19 mars 2008 23:32

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'RegSrvc.exe' - '1' Module(s) have been scanned
Scan process 'mpservic.exe' - '1' Module(s) have been scanned
Scan process 'MDM.EXE' - '1' Module(s) have been scanned
Scan process 'guard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'a2service.exe' - '1' Module(s) have been scanned
Scan process 'FxSvr2.exe' - '1' Module(s) have been scanned
Scan process 'ApntEx.exe' - '1' Module(s) have been scanned
Scan process 'VeohClient.exe' - '1' Module(s) have been scanned
Scan process 'msmsgs.exe' - '1' Module(s) have been scanned
Scan process 'VoipDiscount.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avgas.exe' - '1' Module(s) have been scanned
Scan process '_looknstop.exe' - '1' Module(s) have been scanned
Scan process 'opware32.exe' - '1' Module(s) have been scanned
Scan process 'mptbox.exe' - '1' Module(s) have been scanned
Scan process 'winampa.exe' - '1' Module(s) have been scanned
Scan process 'LogiTray.exe' - '1' Module(s) have been scanned
Scan process 'LVCOMSX.EXE' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'Apoint.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process '1XConfig.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'ZCfgSvc.exe' - '1' Module(s) have been scanned
Scan process 'S24EvMon.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
46 processes with 46 modules were scanned

Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!

Starting to scan the registry.
The registry was scanned ( '33' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\Administrateur\Local Settings\Temp\NOD5BF8.tmp
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '48259741.qua'!
C:\Documents and Settings\Administrateur\Local Settings\Temp\NOD5BFB.tmp
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '48259742.qua'!
C:\Documents and Settings\Administrateur\Local Settings\Temp\NOD5BFD.tmp
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '48259745.qua'!
C:\Documents and Settings\Administrateur\Local Settings\Temp\NOD5BFF.tmp
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '48259747.qua'!
C:\Documents and Settings\Administrateur\Local Settings\Temp\NOD5C01.tmp
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '48259749.qua'!
C:\Documents and Settings\Administrateur\Local Settings\Temp\NOD5C05.tmp
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '4825974b.qua'!
C:\Documents and Settings\Administrateur\Local Settings\Temp\NOD5C07.tmp
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '4825974d.qua'!
C:\Documents and Settings\Administrateur\Local Settings\Temp\NOD5C09.tmp
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '48259750.qua'!
C:\WINDOWS\system32\drivers\sptd.sys
[WARNING] The file could not be opened!


End of the scan: jeudi 20 mars 2008 00:07
Used time: 34:59 min

The scan has been done completely.

5905 Scanning directories
177311 Files were scanned
8 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
8 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
177303 Files not concerned
1964 Archives were scanned
2 Warnings
1 Notes

voilà, je vais faire de même avec A2
0
Réponse 24 / 27
••RiverToo•• Messages postés 1098 Statut Membre 53
 
Ok
0
poca
 
Bonjour,

Voilà, hier soir je vous avez posté les 3 scan: antivir, avg et A2, mais, je ne les ai pas mis dans l'ordre. En effet les scans d'AVG et A2 sont mis un peu plus haut que celui d'antivir.

Voilà, là mon ordi vient de relancer antivir, je remettrai le rapport dès que celui-ci sera fini.

Je ne sais pas trop s'il y a encore des manip, mon ordi paraît moins infecté, non?

Merci
0
poca
 
Voilà, le scan d'antivir ce matin et celui du scan en ligne d'hier que je crois avoir retrouvé:



AntiVir PersonalEdition Classic
Report file date: jeudi 20 mars 2008 08:50

Scanning for 1158890 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: SYSTEM
Computer name: XPSP2-BF2FC0858

Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29
AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51
LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47
LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15
ANTIVIR1.VDF : 7.0.3.2 5447168 Bytes 07/03/2008 15:13:10
ANTIVIR2.VDF : 7.0.3.3 2048 Bytes 07/03/2008 15:13:10
ANTIVIR3.VDF : 7.0.3.54 311808 Bytes 19/03/2008 15:13:10
AVEWIN32.DLL : 7.6.0.75 3334656 Bytes 19/03/2008 15:13:11
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
AVPACK32.DLL : 7.6.0.3 360488 Bytes 19/03/2008 15:13:11
AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06
AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13
RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37
SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: C:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: jeudi 20 mars 2008 08:50

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'FxSvr2.exe' - '1' Module(s) have been scanned
Scan process 'reader_sl.exe' - '1' Module(s) have been scanned
Scan process 'VeohClient.exe' - '1' Module(s) have been scanned
Scan process 'msmsgs.exe' - '1' Module(s) have been scanned
Scan process 'VoipDiscount.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'ApntEx.exe' - '1' Module(s) have been scanned
Scan process 'avgas.exe' - '1' Module(s) have been scanned
Scan process 'opware32.exe' - '1' Module(s) have been scanned
Scan process 'mptbox.exe' - '1' Module(s) have been scanned
Scan process 'winampa.exe' - '1' Module(s) have been scanned
Scan process 'LogiTray.exe' - '1' Module(s) have been scanned
Scan process 'LVCOMSX.EXE' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process '_looknstop.exe' - '1' Module(s) have been scanned
Scan process 'Apoint.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'RegSrvc.exe' - '1' Module(s) have been scanned
Scan process 'mpservic.exe' - '1' Module(s) have been scanned
Scan process 'MDM.EXE' - '1' Module(s) have been scanned
Scan process 'guard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'a2service.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process '1XConfig.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'ZCfgSvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'S24EvMon.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
47 processes with 47 modules were scanned

Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!

Starting to scan the registry.
The registry was scanned ( '33' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\WINDOWS\system32\drivers\sptd.sys
[WARNING] The file could not be opened!


End of the scan: jeudi 20 mars 2008 09:57
Used time: 1:07:41 min

The scan has been done completely.

5931 Scanning directories
177677 Files were scanned
0 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
177677 Files not concerned
1966 Archives were scanned
2 Warnings
1 Notes



Et j'ai trouvé ce rapport, j'ai pensé que ca devait être celui du scan en ligne:

# version=4
# OnlineScanner.ocx=1.0.0.635
# OnlineScannerDLLA.dll=1, 0, 0, 79
# OnlineScannerDLLW.dll=1, 0, 0, 78
# OnlineScannerUninstaller.exe=1, 0, 0, 49
# vers_standard_module=2960 (20080319)
# vers_arch_module=1.064 (20080214)
# vers_adv_heur_module=1.064 (20070717)
# EOSSerial=901a306afb2b5246aa59e7957c5e07d6
# end=finished
# remove_checked=true
# unwanted_checked=true
# utc_time=2008-03-19 10:03:40
# local_time=2008-03-19 11:03:40 (+0100, Paris, Madrid)
# country="France"
# osver=5.1.2600 NT Service Pack 2
# scanned=180093
# found=1
# scan_time=15059
C:\QooBox\Quarantine\C\Program Files\Navilog1\Backupnavi\dmdlnhs.exe.vir a variant of Win32/Adware.NaviPromo application (unable to clean - deleted) 00000000000000000000000000000000
0
poca
 
Un dernier hijackthis...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:04:06, on 20/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\S24EvMon.exe
C:\WINDOWS\system32\ZCfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\1XConfig.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
C:\WINDOWS\system32\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Soft4Ever\looknstop\_looknstop.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Canon\MultiPASS4\MPTBox.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\WINZIP\winzip32.exe
C:\Documents and Settings\Administrateur\Local Settings\Temp\wz4c30\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://login.live.com/ppsecure/sha1auth.srf?lc=1036
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickStarTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PRONoMgr.exe] C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [MPTBox] C:\Program Files\Canon\MultiPASS4\MPTBox.exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [VoipDiscount] "C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe" -nosplash -minimized
O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\pando.exe" /Automation
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - https://www.eset.com/
O21 - SSODL: CDService - {ac6e7549-6ff1-4c4a-b40e-7c84b9ef6f65} - C:\WINDOWS\Installer\{ac6e7549-6ff1-4c4a-b40e-7c84b9ef6f65}\CDService.dll (file missing)
O21 - SSODL: zip - {2c64bb40-abea-4332-89ac-756cfbd9e123} - C:\WINDOWS\Installer\{2c64bb40-abea-4332-89ac-756cfbd9e123}\zip.dll (file missing)
O21 - SSODL: altvxvm - {06B3ACAE-153B-4DA2-B23A-161DDA18D346} - C:\WINDOWS\altvxvm.dll (file missing)
O21 - SSODL: bokpkov - {ED4025EA-B4FE-4783-93D9-9D56D7B78250} - C:\WINDOWS\bokpkov.dll (file missing)
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: MpService - Canon Inc. - C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\system32\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\system32\S24EvMon.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 27
••RiverToo•• Messages postés 1098 Statut Membre 53
 
As tu encore des problèmes ??
0
poca
 
Il ne me semble pas, enfin l'ordi fait parfois des choses bizarres mais, je crois que cela serait scruter tous ses faits et geste. Je crois que c'est bon maintenant, enfin j'espère...!

Je voulais vraiment te enfin vous remercier. Merci pour ce temps passé à m'aider. Je ne dis pas à la prochaine, cela insinuerait qu'il y aurait encore un problème!!!..., mais bonne continuation et merci merci encore, pour moi, et pour les autres, c'est vraiment bien de nous apporter à nous novice de l'aide dans ces moments!!!

A une prochaine, et encore merci.
0
Réponse 26 / 27
••RiverToo•• Messages postés 1098 Statut Membre 53
 
Si tu n'as plus de problème tu peux mettre résolus :)
0
Réponse 27 / 27
••RiverToo•• Messages postés 1098 Statut Membre 53
 
ensuite pour virer les fix que je t'ai fait téléchargées:

· Télécharge ToolsCleaner de A.Roshtein sur ton Bureau.
http://pagesperso-orange.fr/AceRothstein/ToolsCleaner2.exe
· Clique sur Recherche et laisse le scan se terminer.
· Clique, sur Suppression pour finaliser.
· Tu peux, si tu le souhaites, te servir des Options facultatives.
· Clique sur Quitter, pour que le rapport puisse se créer.
· Poste moi le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur( C:\).

Mais quel chose bizarre parle tu ?
0

Discussions similaires

qu'est ce qu'un "trojan agent/gen" ? svp
Saber03 -
jacques.gache -

33 réponses
QuickShare c'est quoi ce truc
edelweiss2604 -
edelweiss2604 -

41 réponses
C'est quoi "Win32:Trojan-gen {Other}"
Uzumaki -
Utilisateur anonyme -

5 réponses
Problème avec "PUADIManager:Win32/OfferCore
Knaki -
bazfile -

3 réponses
Agent web de "Avast!" désactivé
Zurling -
Malekal_morte- -

1 réponse